plugins-workspace icon indicating copy to clipboard operation
plugins-workspace copied to clipboard
verified publisher icon tauri-apps

Add option to passthrough headers inside check()

Open pacosw1 opened this issue 1 year ago • 7 comments

I am currently implementing a dynamic server updater using the rc plugin. However, I can't have the update bundles hosted publicly so I implemented a system to store them in S3.

To cut to the chase, I create a presigned url and this is what is returned from my update endpoint for the app to download, however, since I add authentication headers, the plugin adds them to the request and it caused a 400 bad request from S3 side as the signature doesn't match and in my case, "Authorization" header can't be used since presigned url uses a different auth mechanism.

I worked around this by using the rust implementation to remove the headers from the update object, but this isn't possible in javascript.

It would be nice to have an option {"passthroughHeaders": bool} set to true by default, or some other way to control the headers when downloading the update.

pacosw1 avatar Aug 07 '24 20:08 pacosw1

I'm not sure how to add the plugin tag

pacosw1 avatar Aug 07 '24 20:08 pacosw1

Could you explain a bit more what would passthroughHeaders would do? do you want to remove some headers when downloading or add new headers?

amrbashir avatar Aug 13 '24 22:08 amrbashir

I think passing the headers by default is a good idea and will work with most use cases (github action, releases etc...), but I am using an S3 presigned url.

Because it is signed, I can't have tauri add http headers because it breaks the signature. In my case, and probably most custom solutions for the updater component, it's best to give an option to modify the headers, or disable passing the headers to the "download" function

Currently in the js client, we have no control over the http request.

pacosw1 avatar Aug 13 '24 23:08 pacosw1

I see, we can add an optional second argument to allow modifying some options.

amrbashir avatar Aug 13 '24 23:08 amrbashir

@pacosw1 can you see if #1634 fixes this for you? you can clear the headers like this:

update.download(() => {}, { headers: [] })

On a side note, there is two headers we set internally, Accept and User-Agent:

  • User-Agent is the same value when checking for an update and when downloading so I don't suspect it is the problem.
  • Accept has different value, when checking for update, it is set to application/json and when downloading, it is set to application/octet-stream but seeing that you used the Rust APIs and it worked for you, I am assuming this is not an issue as well.

Let me know if these internal headers is causing a problem

amrbashir avatar Aug 14 '24 00:08 amrbashir

@pacosw1 can you see if #1634 fixes this for you? you can clear the headers like this:


update.download(() => {}, { headers: [] })

On a side note, there is two headers we set internally, Accept and User-Agent:

  • User-Agent is the same value when checking for an update and when downloading so I don't suspect it is the problem.

  • Accept has different value, when checking for update, it is set to application/json and when downloading, it is set to application/octet-stream but seeing that you used the Rust APIs and it worked for you, I am assuming this is not an issue as well.

Let me know if these internal headers is causing a problem

Hey, I will implement this and report back.

Not sure about the other headers, but yeah, I cleared the headers in rust and it worked correctly.

In that case it was probably my "Authorization" header causing the problem.

Thanks for the fix!

pacosw1 avatar Aug 14 '24 03:08 pacosw1

Not sure about the other headers, but yeah, I cleared the headers in rust and it worked correctly.

even if you clear the headers before calling Update::download on the Rust side, we still add them right before actually sending the HTTP request

Hey, I will implement this and report back.

Thanks, please let me know how it goes

amrbashir avatar Aug 14 '24 13:08 amrbashir